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Amendments to the Claims 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims: 

1 . (Currently Amended) A method for registering a first device with a second 
device, comprising the steps of: 

initiating communication between the first device and the second device over a 
first communication channel using a first communication method by engaging a trigger at 
the first device and detecting at the second device that the trigger at the first device has 
been engaged; 

generating a first secret known to the first device and a second secret known to 
the second device using communications between the first device and the second device 
over the [[a]] first communication channel using the [[a]] first communication method; 

from the first device, producing first information derived from the first secret; 

from the second device, producing second information derived from the second 

secret; 

using a communication channel other than the first communication channel and a 
communication method other than the first communication method, comparing the first 
information and the second information in a manner sufficient to assure a third party that 
the first secret and the second secret are the same; and 

enabling the first and second device to use the first and second secrets upon the 
third party being assured that the first secret and the second secret are the same. 

2. (Original) The method of claim 1 wherein the first device and the second device 
generate the first and second secrets using Diffie-Hellman key exchange. 
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3. (Original) The method of claim 1 wherein: 

the first information is derived from a hash of the first secret; and 
the second information is derived from a hash of the second secret. 

4. (Original) The method of claim 1 wherein the first information comprises a 
credential. 

5. (Currently Amended) A method for registering a first device with a second 
device, comprising the steps of: 

(a) engaging a trigger coupled to the first device, the trigger comprising one or 
more of a switch or a button; 

(b) detecting at the second device that the trigger coupled to the first device has 
been engaged; 

(c) after step (b), [[(a)]] communicating a commitment from the first device to the 
second device over a first communication channel using a first communication method, 
said commitment comprising information derived from a security value known to the first 
device; 

(d) [[(b)]] communicating from the second device to the first device over the first 
communication channel, information for use in generating a first secret; 

(e) [[(c)]] after step [[(b)]] (d), communicating the security value from the first 
device to the second device; 

(f) at the second device, attempting to derive the commitment communicated to 
the second device at step (a) from the security value communicated to the second device 
at step (c) and terminating registration if the commitment is not correctly derived from 
the security value; 

(g) [[(d)]] generating the first secret at the first device and a second secret at the 
second device; 

(h) [[(e)]] from the first device, on a communication channel other than the first 
communication channel and using a communication method other than the first 
communication method, validating first verification information related to the first secret; 
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(i) [[(f)]] from the second device, on a communication channel other than the first 
communication channel and using a communication method other than the first 
communication method, validating second verification information related to the second 
secret; and 

(j} [[(g)]] enabling the first and second devices to use the first and second secrets 
upon a third party being assured that the first secret and the second secret are the same. 

6. (Original) The method of claim 5 wherein the commitment is a hash of the 
security value. 

7. (Original) The method of claim 5 wherein the first verification information is a 
hash value derived from the first secret and the security value. 

8. (Original) The method of claim 7 wherein the first verification information is a 
hash value derived from a catenation of the first secret with the security value. 

9. (Previously Presented) The method of claim 5 wherein the length of the first 
verification information is shorter than a length needed to provide an identical level of 
security in a method that does not utilize said commitment. 

10. (Original) The method of claim 5 wherein the first verification information 
comprise a credential. 

1 1 . (Currently Amended) A device capable of registering with an other device, 
comprising: 

a trigger coupled to the device, the trigger comprising a switch or a button; 

an interface to a first communication channel associated with a first 
communication method; 

an interface to a second communication channel associated with a communication 
method other than the first communication method; and 



4 



10/813,357 



MS321457.01/MSFTP1996US 



a registration process that (1) initiates communication with the other device over 
the first communication channel upon engagement of the trigger coupled to the device, 
(2) generates a first secret that is to-be-shared with the other device using the first 
communication channel, [[(2)]] 0} validates on the second communication channel 
verification information derived from the to-be-shared secret, and [[(3)]] (4) is enabled to 
use the to-be-shared secret upon receipt of an indication that a third party is assured that 
the first secret is shared with the other device. 

12. (Original) The device of claim 1 1 wherein the device generates the first secret 
using a Diffie-Hellman key exchange. 

13. (Original) The device of claim 1 1 wherein the verification information is derived 
from a hash of the first secret. 

14. (Original) The device of claim 1 1 wherein the verification information comprises 
a credential. 

15. (Currently Amended) A device capable of registering with an other device, 
comprising: 

a trigger coupled to the device; 

an interface to a first communication channel associated with a first 
communication method; 

an interface to a second communication channel associated with a communication 
method other than the first communication method; and 

a registration process that (1) initiates communication with the other device over 
the first communication channel upon engagement of the trigger coupled to the device, 
(2) receives, on the first communication channel, a commitment derived from a security 
value; [[(2)]] Q) produces, on the first communication channel, information for use in 
generating a shared secret; [[(3)]] (4) after step [[(2)]] (3), communicates the security 
value on the first communication channel; ('1) generated (5) generates a first secret to-be- 
shared with the other device, [[(5)]] (6) communicates on the second communication 
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channel verification information related to the first secret, and [[(6)]] (7) is enabled to use 
the first secret upon receipt of an indication that a third party is assured that the first 
secret is hared with the other device. 

16. (Original) The device of claim 15 wherein the commitment is a hash of the 
security value. 

17. (Original) The device of claim 15 wherein the verification information is a hash 
value derived from the first secret and the security value. 

18. (Original) The device of claim 17 wherein the verification information is a hash 
value derived from the catenation of the first secret with the security value. 

19. (Previously Presented) The device of claim 15 wherein the length of the 
verification information is shorter than a length needed to provide an identical level of 
security in a method that does not utilize said commitment. 

20. (Original) The method of claim 15 wherein the verification information is a 
credential. 

21 . (Currently Amended) A server capable of registering a device to a network, 
comprising: 

an interface to a first communication channel associated with a first 
communication method; 

an interface to a second communication channel associated with a communication 
method other than the first communication method; and 

a registration process that (1) generates a first secret that is to-be-shared with the 
devise device using the first communication channel upon detecting that a trigger coupled 
to the device has been engaged ; (2) validated on the second communication channel 
validates verification information derived from the first secret on the second 
communication channel , and (3) enables the network to use the first secret upon receipt 
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of an indication that a third party is assured that the to-be-shared secret is shared with the 
device. 

22. (Original) The server of claim 21 wherein the server generates the first secret 
using Diffie-Hellman key exchange. 

23. (Original) The server of claim 21 wherein the verification information derived 
from a hash of the first secret. 

24. (Original) The server of claim 21 wherein the verification information comprises 
a credential. 

25. (Currently Amended) A server capable of registering a device to a network, 
comprising: 

an interface to a first communication channel associated with a first 
communication method; 

an interface to a second communication channel associated with a communication 
method other than the first communication method; and 

a registration process that (1) communicates over the first communication channel 
a commitment comprising information derived from a security value upon detecting that 
the registration process has been initiated at the device by engaging a trigger coupled to 
the device ; (2) communicates over the first communication channel information for use in 
generating a shared secret; (3) after step (2), communicates the security value over the 
first communication channel; (4) generates a first secret to-be-shared with the device; (5) 
communicates over the second communication channel verification information related to 
the secret; and (6) enables the network to use the first secret upon receipt of an indication 
that a third party is assured that the first secret is shared with the device. 

26. (Original) The server of claim 25 wherein the commitment is hash of the security 
value. 
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27. (Original) The server of claim 25 wherein the verification information is a hash 
value derived from the secret and the security value. 

28. (Original) The server of claim 27 wherein the verification information is a hash 
value derived from the catenation of the first secret with the security value. 

29. (Previously Presented) The server of claim 25 wherein the length of the 
verification information is shorter that a length needed to provide an identical level of 
security in a method that does not utilize said commitment. 



30. (Original) The method of claim 25, wherein the verification information 
comprises a credential. 



